FRST pomalé PC

[Rull]

Předem zdravím a přeji hezký den,
Momentálně mě trápí laptop, trochu mě dochází nápady.. Včera jsem dal bod obnovy který trval snad 4 hodiny, vlastně chození kolem dokola a nic...

Takže k věci...trvání PC a jakéhokoliv běhu je strašně pomalé, snad i smrt by si pro me dosla dřív.. pri čištění PC jsem to vzal i Ccleanerem, celkovou údržbu + aktualizace ovladačů, a nic, CPU se tváří jako by jelo na 99%, vyhazuje každé spuštění dialog který přikládám +log z FRST, dekuju moc za pomoc.

FORCEPAD DRIVER TRAY WINDOW: SynTPEnh.exe - chyba aplikace

Instrukce na adrese 0x0000000140041362 odkazovala na adresu paměti 0x000000000061D600. S pamětí nelze provést operaci:read.

[Rull]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2021
Ran by Obchod (administrator) on DESKTOP-O0AU14G (Dell Inc. Inspiron 15-3567) (10-12-2021 14:46:52)
Running from C:\Users\Obchod\Desktop
Loaded Profiles: Obchod
Platform: Microsoft Windows 10 Home Version 20H2 19042.1348 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\Serviio\bin\ServiioService.exe <2>
() [File not signed] C:\Windows\SysWOW64\vcakagds.exe
(Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0373234.inf_amd64_2f2bf0ce197fd0ec\B371260\atieclxx.exe
(Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0373234.inf_amd64_2f2bf0ce197fd0ec\B371260\atiesrxx.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Dell Inc -> Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell Inc.) [File not signed] C:\Program Files\Dell\QuickSet\quickset.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\atiw.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(DISPLAYLINK (UK) LIMITED -> ) C:\Program Files\DisplayLink Core Software\DisplayLinkHotDeskService.exe <2>
(DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkTrayApp.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <25>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_7c484f80872e1cd8\jhi_service.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d00b147fae66a3d0\igfxCUIService.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d00b147fae66a3d0\igfxEM.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d00b147fae66a3d0\IntelCpHDCPSvc.exe
(Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d00b147fae66a3d0\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_fc9ac11e55f51133\RstMwService.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\mcafee\amcore\mcshield.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\csp\3.1.160.0\McCSPServiceHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\MMSSHost\MMSSHOST.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\PEF\CORE\PEFService.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\VSCore_18_12\mcapexe.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\MfeAV\MfeAVSvc.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe <2>
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WerFault.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <3>
(Rivet Networks LLC -> CloudBees, Inc.) C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe
(Rivet Networks LLC -> Rivet Networks LLC) C:\Program Files\Rivet Networks\SmartByte\RNDBWM.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe <2>
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPHelper.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSysSvc64.exe
Failed to access process -> SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3925504 2016-08-09] (Dell Inc.) [File not signed]
HKLM\...\Run: [StartCN] => c:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8025992 2016-09-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1211696 2020-12-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3086208 2021-08-12] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [157464 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSvc64.exe [1570400 2019-09-19] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DisplayLinkTrayApp] => C:\Program Files\DisplayLink Core Software\DisplayLinkTrayApp.exe [6350592 2021-08-11] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1812800 2019-04-16] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [automuter] => C:\Program Files (x86)\Automuter\Automuter.exe [208896 2008-03-05] () [File not signed]
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35342976 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-08-13] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [uTorrent] => C:\Users\Obchod\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-13] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [ut] => C:\Users\Obchod\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-13] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [MicrosoftEdgeAutoLaunch_6FA1B745B6707A72507282146F8CEA03] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\RunOnce: [SeznamInstall-uninstall:c11eb685dea0d5c647be7a638d200143] => C:\Users\Obchod\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [534528 2021-12-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\MountPoints2: {eeda791b-c2f5-11eb-8a43-f8da0c443228} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [] => [X]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable
Startup: C:\Users\Obchod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ToggleVOLUME.lnk [2019-06-20]
ShortcutTarget: ToggleVOLUME.lnk -> C:\Program Files (x86)\Toggle Software\ToggleVOLUME\ToggleVOLUME.exe (Toggle Software Inc.) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {15B0E600-97AA-4293-93C9-ED45D25588F8} - System32\Tasks\CCleanerSkipUAC - Obchod => C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1E1CA083-F863-4D6F-9A25-39E8A45758B3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {1F7F4994-0E29-4080-ABD7-7223996D964B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {244A98A2-F2AF-47EC-81E2-54B6F65CCFEF} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLVDLauncher.exe [340440 2015-01-29] (CyberLink Corp. -> CyberLink Corp.)
Task: {2FD29F2E-3AAC-4721-807C-5A665956A7D5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {41F36E90-1F23-4621-B933-AB4F011ABAB8} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [436696 2017-02-17] (Dell Inc. -> PC-Doctor, Inc.)
Task: {4237C32A-6D58-412C-A5B7-79E22ACA744A} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1022656 2018-12-17] (McAfee, Inc. -> McAfee, Inc.)
Task: {489406DC-85DE-4ED0-A2A6-6E39A5219318} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4695104 2021-10-25] (McAfee, LLC -> McAfee, LLC)
Task: {4C01F3DF-173F-442B-AF5B-2B6C69D4F594} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-11-12] (Piriform Software Ltd -> Piriform)
Task: {4CB828D2-0D9B-47C4-91D3-52253FACDF6F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {516F0BE6-B187-411E-A5C8-71F489217A11} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4969240 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
Task: {60C75A7C-4753-42B1-A08F-72D81D8EC7B9} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe [919832 2020-11-17] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {63F0E261-3850-4876-8A3D-4BD523AF41AC} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {6F66A249-734D-4D19-BA75-D856D641D3B6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7700FF3C-17D5-4D22-BE51-23C2A49445B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-02-19] (Google Inc -> Google LLC)
Task: {7A7B7CA3-CA4F-43D7-BD5C-10FEE0A18721} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [756672 2018-11-13] (McAfee, Inc. -> McAfee, Inc.)
Task: {914F1BC1-22F7-4F21-8523-75D1D70BFE1A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {950D2E46-DEDA-4CA4-BA58-08D826ABB146} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9750C514-2DA5-4AF6-8E7A-EFEA56D17D1A} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe [513216 2017-12-12] (LG Electronics Inc. -> LG Electronics Inc.)
Task: {9C6D765C-866A-4BD6-9FA2-304E743C9F7F} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [616232 2016-11-28] (Dropbox, Inc -> DropboxOEM)
Task: {A2C8A314-1239-4821-ABD7-4B7CFCD61F91} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [1154008 2017-02-17] (Dell Inc. -> PC-Doctor, Inc.)
Task: {B0EE1F76-F907-41EC-82B9-B045721FB316} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistInstaller.exe [1059872 2021-05-24] (Dell Inc -> Dell Inc.)
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleanerSkipUAC - Obchod" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d72758a6dfe56b" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {C1F90728-E5D8-4373-9226-6FAB957578D4} - System32\Tasks\PCDDataUploadTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [1154008 2017-02-17] (Dell Inc. -> PC-Doctor, Inc.)
Task: {D243F037-5006-4DC6-BE10-9E75B71901B1} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [1154008 2017-02-17] (Dell Inc. -> PC-Doctor, Inc.)
Task: {D38E5244-DC87-4C0D-9AD2-15C640E0FBD9} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1022656 2018-12-17] (McAfee, Inc. -> McAfee, Inc.)
Task: {DD2586EC-42CA-4022-B16F-CEE7F4A5DC67} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBBF805D-A5A6-4A9A-9412-15E381645D5A} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.6.110\DADUpdater.exe [4119992 2021-10-07] (McAfee, LLC -> McAfee, LLC)
Task: {F571662C-2A47-454E-9E70-97FD02128240} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAAA8216-4BEB-483B-8685-214405E4ED67} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-02-19] (Google Inc -> Google LLC)
Task: {FBE3283C-DF78-4686-8273-860DDDE7124F} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe [110008 2016-04-27] (CyberLink Corp. -> CyberLink)
Task: {FC85712C-9290-4169-8740-901DA2795AB3} - System32\Tasks\SmartByte Telemetry => C:\Program Files\Rivet Networks\SmartByte\SmartByteTelemetry.exe [32448 2018-12-04] (Rivet Networks LLC -> DELL)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{463eae46-2781-4067-bd7c-c1c276a82a17}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ad04aa99-6b73-4694-b21a-6907663b053b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d693f181-322f-4c48-ac17-9cfccefca56d}: [DhcpNameServer] 192.168.1.1 8.8.8.8 217.112.162.34 217.112.160.1

Edge:
=======
DownloadDir: C:\Users\Obchod\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Obchod\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-10]

FireFox:
========
FF DefaultProfile: 5k3goyrr.default
FF ProfilePath: C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\5k3goyrr.default [2021-08-24]
FF Homepage: Mozilla\Firefox\Profiles\5k3goyrr.default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF NewTab: Mozilla\Firefox\Profiles\5k3goyrr.default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF ProfilePath: C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release [2021-12-10]
FF Homepage: Mozilla\Firefox\Profiles\rwbsys31.default-release -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF NewTab: Mozilla\Firefox\Profiles\rwbsys31.default-release -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF Extension: (Porn Blocker) - C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release\Extensions\@porn-blocker.xpi [2020-10-30]
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2021-12-10]
FF Extension: (MagicCast) - C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release\Extensions\{ecd940bf-4984-494f-857b-25ebbdeff8c9}.xpi [2020-11-25]
FF SearchPlugin: C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release\searchplugins\Poshukach Engin Search.xml [2021-08-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @mcafee.com/MSC,version=10 -> c:\program files\mcafee\msc\npmcsnffpl64.dll [2019-02-15] (McAfee, Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\program files (x86)\mcafee\msc\npmcsnffpl.dll [2019-02-15] (McAfee, Inc. -> )
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default [2021-12-10]
CHR Notifications: Default -> hxxps://filmplanet.to; hxxps://hellopushworld.com; hxxps://www.facebook.com; hxxps://www.ufreegames.com
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E211CZ105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-17]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-08-13]
CHR Extension: (Dokumenty) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-17]
CHR Extension: (Disk Google) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-27]
CHR Extension: (YouTube) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-17]
CHR Extension: (vGet Cast (DLNA Controller)) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekdjofnchpbfmnfbedalmbdlhbabiapi [2020-11-25]
CHR Extension: (Tabulky) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-17]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-11-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-13]
CHR Extension: (Gmail) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-27]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8480848 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [452888 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [452888 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1752480 2017-02-24] (McAfee, Inc. -> Intel Security)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [422128 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3975712 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [623136 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [132472 2016-09-09] (Dell Inc -> Dell Inc.)
S2 Dell Hardware Support; C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe [1009264 2021-03-30] (PC-Doctor, Inc. -> PC-Doctor, Inc.)
S2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [38592 2021-01-06] (Dell Inc -> )
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-04-16] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 DisplayLinkHotDeskService; C:\Program Files\DisplayLink Core Software\DisplayLinkHotDeskService.exe [2836224 2021-08-11] (DISPLAYLINK (UK) LIMITED -> )
R2 jwqmzdzzdvsqsb; c:\windows\SysWOW64\vcakagds.exe [318464 2020-02-25] () [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-12-10] (McAfee, LLC -> McAfee, LLC)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_18_12\McApExe.exe [745880 2019-01-23] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [454560 2017-01-16] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.1.160.0\\McCSPServiceHost.exe [2158952 2018-12-17] (McAfee, Inc. -> McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [371840 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [604216 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [509728 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1692552 2018-12-19] (McAfee, Inc. -> McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1360384 2019-02-05] (McAfee, Inc. -> McAfee, Inc.)
S2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [46632 2017-04-17] (Dell Inc -> Dell)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2015-09-02] (CyberLink Corp. -> CyberLink)
R2 RNDBWM; C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe [64184 2018-12-04] (Rivet Networks LLC -> CloudBees, Inc.)
R2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [413696 2020-05-03] () [File not signed]
R2 SmartByte Network Service x64; C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe [2114248 2018-12-04] (Rivet Networks LLC -> Rivet Networks)
S2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [39968 2021-05-24] (Dell Inc -> Dell Inc.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10101336 2021-08-12] (Riot Games, Inc. -> Riot Games, Inc.)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-08-13] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [222128 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [368152 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [251928 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-30] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [185216 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [538992 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [852752 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [544096 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214352 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317680 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77384 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32952 2016-10-13] (Techporch Incorporated -> Dell Computer Corporation)
R2 DpmLiteDrv; c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [15080 2014-10-15] (Wistron Corporation -> Wistron Corp.)
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_skl.inf_amd64_2a35efc43f1a612e\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [511024 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [373808 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [86136 2019-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [517168 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [981032 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [563728 2018-11-19] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109072 2018-11-19] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [117800 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254024 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [120008 2018-12-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8236288 2021-08-12] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49544 2021-03-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420088 2021-03-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-06] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-10 14:46 - 2021-12-10 14:52 - 000037712 _____ C:\Users\Obchod\Desktop\FRST.txt
2021-12-10 14:35 - 2021-12-10 14:36 - 002311168 _____ (Farbar) C:\Users\Obchod\Downloads\FRST64 (1).exe
2021-12-10 14:34 - 2021-12-10 14:36 - 002311168 _____ (Farbar) C:\Users\Obchod\Desktop\FRST64.exe
2021-12-10 13:25 - 2021-12-10 13:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2021-12-10 12:54 - 2021-12-10 12:54 - 000000000 ____D C:\Program Files\DisplayLink Core Software
2021-12-10 12:28 - 2021-12-10 12:33 - 081137392 _____ (DisplayLink Corp.) C:\Users\Obchod\Downloads\DisplayLink USB Graphics Software for Windows with Hot Desking10.1 M2-EXE.exe
2021-12-10 12:24 - 2021-12-10 12:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-12-10 11:02 - 2021-12-10 10:58 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-12-10 11:01 - 2021-12-10 10:59 - 000214352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-12-10 00:30 - 2021-12-10 13:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-10 00:00 - 2021-12-10 13:17 - 000000000 ____D C:\ProgramData\McInstTemp0264271639090807
2021-11-28 19:32 - 2021-12-10 00:43 - 000002078 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-11-11 19:11 - 2021-11-11 19:11 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-11 19:09 - 2021-11-11 19:09 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-11 19:08 - 2021-11-11 19:08 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-11 19:03 - 2021-11-11 19:03 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-11 17:20 - 2021-11-11 17:20 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-10 15:04 - 2020-11-27 12:50 - 000000000 ____D C:\Users\Obchod\AppData\Local\CrashDumps
2021-12-10 14:57 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-10 14:50 - 2021-01-16 11:17 - 000000000 ____D C:\FRST
2021-12-10 14:43 - 2021-01-17 12:03 - 000000000 ____D C:\Users\Obchod\Desktop\Nová složka (2)
2021-12-10 14:19 - 2021-02-19 12:55 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-10 14:17 - 2021-01-16 22:10 - 000000000 ____D C:\Program Files\CCleaner
2021-12-10 14:11 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-10 14:11 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-10 14:10 - 2019-03-26 15:30 - 000000000 ____D C:\Users\Obchod\AppData\Local\Packages
2021-12-10 14:08 - 2021-08-12 17:20 - 000000000 ____D C:\Program Files (x86)\Seznam.cz
2021-12-10 14:08 - 2021-08-12 17:19 - 000000000 ____D C:\Users\Obchod\AppData\Roaming\Seznam.cz
2021-12-10 14:03 - 2020-12-27 12:48 - 000000000 ____D C:\Users\Obchod\AppData\Local\AVAST Software
2021-12-10 13:23 - 2020-11-27 12:33 - 000000000 ____D C:\ProgramData\Avast Software
2021-12-10 13:20 - 2019-03-26 15:29 - 000000000 __SHD C:\Users\Obchod\IntelGraphicsProfiles
2021-12-10 13:18 - 2021-04-02 02:41 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-12-10 13:17 - 2020-06-12 12:37 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2021-12-10 13:17 - 2017-06-15 11:40 - 000000000 ____D C:\Program Files (x86)\McAfee
2021-12-10 13:16 - 2019-02-23 17:13 - 000000000 ____D C:\Intel
2021-12-10 13:15 - 2021-04-02 02:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-12-10 13:15 - 2021-04-02 01:09 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-10 13:15 - 2020-03-16 19:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-12-10 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-12-10 13:13 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-12-10 13:12 - 2021-11-03 10:27 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-12-10 13:10 - 2021-08-13 08:13 - 000000000 ____D C:\Users\Obchod\AppData\Roaming\uTorrent
2021-12-10 12:54 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-12-10 12:30 - 2020-06-10 00:02 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-10 12:25 - 2020-03-16 19:19 - 000000000 ____D C:\Users\Obchod\AppData\LocalLow\Mozilla
2021-12-10 12:24 - 2020-03-16 19:19 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-12-10 12:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-12-10 11:46 - 2019-04-19 14:22 - 000000000 ____D C:\ProgramData\Packages
2021-12-10 11:39 - 2021-04-15 16:36 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d72758a6dfe56b
2021-12-10 11:39 - 2021-04-02 02:41 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-10 11:38 - 2017-06-15 11:54 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-10 11:26 - 2021-04-02 01:39 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-10 11:26 - 2019-12-07 15:41 - 000717850 _____ C:\WINDOWS\system32\perfh005.dat
2021-12-10 11:26 - 2019-12-07 15:41 - 000144992 _____ C:\WINDOWS\system32\perfc005.dat
2021-12-10 11:02 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-12-10 10:59 - 2020-11-27 12:43 - 000544096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000538992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000317680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000251928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000185216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-12-10 10:57 - 2020-11-27 12:43 - 000852752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-12-10 10:57 - 2020-11-27 12:43 - 000222128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-12-10 10:57 - 2020-11-27 12:43 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-12-10 10:56 - 2020-11-27 12:43 - 000368152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-12-10 10:28 - 2021-08-13 08:08 - 000000000 ____D C:\Users\Obchod\AppData\Local\BitTorrentHelper
2021-12-10 10:27 - 2021-09-13 22:37 - 000000000 ____D C:\Users\Obchod\AppData\LocalLow\uTorrent
2021-12-10 00:43 - 2020-11-27 12:59 - 000002090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2021-12-09 23:44 - 2021-08-20 09:53 - 000002256 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Obchod
2021-12-09 23:44 - 2021-04-02 02:41 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-12-09 23:44 - 2021-04-02 02:41 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-12-09 23:44 - 2021-04-02 02:41 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-12-09 23:33 - 2021-04-02 01:21 - 000000000 ____D C:\Users\Obchod
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-09 23:24 - 2021-04-02 02:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-12-09 23:24 - 2019-04-20 08:15 - 000000000 ____D C:\Users\Obchod\AppData\Roaming\DVDVideoSoft
2021-12-09 22:23 - 2021-02-19 13:03 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-09 21:35 - 2021-04-02 01:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-09 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2021-12-05 20:04 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-11-13 23:06 - 2021-04-02 01:10 - 000432416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-13 23:03 - 2017-06-15 11:28 - 000000934 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-11-13 23:03 - 2017-06-15 11:28 - 000000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-13 23:00 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-13 23:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-13 23:00 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-12 17:41 - 2021-04-02 02:41 - 000003894 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-11-12 17:41 - 2021-04-02 02:41 - 000003662 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-11-11 19:35 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-11 17:07 - 2019-04-17 20:34 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-11 16:51 - 2019-04-17 20:33 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2020-06-04 20:51 - 2021-01-17 08:07 - 000003217 _____ () C:\Users\Obchod\AppData\Local\PlariumPlay.log
2021-04-06 14:00 - 2021-04-06 14:00 - 000000000 _____ () C:\Users\Obchod\AppData\Local\{8D811739-FAD1-40FB-8A18-2B3DBE10EAEC}
2021-04-06 13:56 - 2021-04-06 13:56 - 000000000 _____ () C:\Users\Obchod\AppData\Local\{EEC0830D-7CEB-4274-81DD-3EC504CA9204}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[Rull]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-12-2021
Ran by Obchod (10-12-2021 15:04:50)
Running from C:\Users\Obchod\Desktop
Microsoft Windows 10 Home Version 20H2 19042.1348 (X64) (2021-04-02 01:44:36)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2166850603-1525175105-4254810413-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2166850603-1525175105-4254810413-503 - Limited - Disabled)
Guest (S-1-5-21-2166850603-1525175105-4254810413-501 - Limited - Disabled)
Obchod (S-1-5-21-2166850603-1525175105-4254810413-1001 - Administrator - Enabled) => C:\Users\Obchod
WDAGUtilityAccount (S-1-5-21-2166850603-1525175105-4254810413-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: McAfee VirusScan (Disabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Automuter 2.2 (HKLM-x32\...\Automuter_is1) (Version: - automuter.com)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.10.2498 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.87 - Piriform)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 12 - CyberLink Corp.)
Dell Customer Connect (HKLM-x32\...\{35BEC446-269E-42E4-8EED-191A38CCFF3D}) (Version: 1.4.10.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{4B38FF9D-7308-411D-93BF-CCF259B476ED}) (Version: 3.5.2013.0 - Dell Products, LP)
Dell SupportAssist (HKLM\...\{A3E44B1D-1AC1-414F-A7D4-0824E0A49F3A}) (Version: 3.9.1.245 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.72 - Dell)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{900D0BCD-0B86-4DAA-B639-89BE70449569}) (Version: 5.4.1.14954 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{ec40a028-983b-4213-af2c-77ed6f6fe1d5}) (Version: 5.4.1.14954 - Dell Inc.)
Dell Update (HKLM-x32\...\{5EBBC1DA-975F-44A0-B438-F325BCD45577}) (Version: 3.0.1 - Dell Inc.)
DisplayLink Graphics (HKLM\...\{4359E6CE-7162-4B47-BE64-A0B82D47AA07}) (Version: 10.1.2875.0 - DisplayLink Corp.)
Dropbox 20 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.541.1 - Dropbox, Inc.) Hidden
DSC/AA Factory Installer (HKLM\...\{F7A70D00-F283-45C8-B163-49EC365D7E27}) (Version: 1.3.6855.72 - PC-Doctor, Inc.) Hidden
FlatOut Demo (HKLM-x32\...\{4B682CF4-9B41-4297-8B13-968B28B864C6}) (Version: 1.01.0000 - Empire Interactive)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.97.416 - Digital Wave Ltd)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11000.2996 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.0.317 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1025 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel® Software Guard Extensions Platform Software (HKLM\...\{06F94C28-DE1D-485F-AD91-333ACEB3F52D}) (Version: 1.6.100.32677 - Intel Corporation)
Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9669.4 - Waves Audio Ltd.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R18 - McAfee, Inc.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14701.20226 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.43 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.34 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\OneDriveSetup.exe) (Version: 21.052.0314.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30040 (HKLM-x32\...\{5c6cccca-61ec-4667-a8d9-e133a59a5a73}) (Version: 14.29.30040.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 95.0 (x64 cs)) (Version: 95.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20210 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
proDAD Adorage 3.0 (HKLM-x32\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH)
Python 3.9.2 (64-bit) (HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\{3973ea30-aa45-4804-9840-93a305a0d632}) (Version: 3.9.2150.0 - Python Software Foundation)
Python 3.9.2 Core Interpreter (64-bit) (HKLM\...\{1F050E31-5E11-4184-B791-8FD5070C55AA}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Development Libraries (64-bit) (HKLM\...\{EA736F6F-172B-4D18-831E-B5DFB2EA5057}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Documentation (64-bit) (HKLM\...\{FDD5FBD7-2E89-496E-B0CE-19FA26F3C347}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Executables (64-bit) (HKLM\...\{701FA3EE-56EB-422A-A2D9-FFFE12E53A5E}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 pip Bootstrap (64-bit) (HKLM\...\{ECCE5BC5-9400-4BB7-82F4-3699308CCC18}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Standard Library (64-bit) (HKLM\...\{D5638C16-6D72-4A80-B101-07B6B9C92273}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Tcl/Tk Support (64-bit) (HKLM\...\{0281F202-0833-49D8-8145-530021FF2CA2}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Test Suite (64-bit) (HKLM\...\{73AB4143-E6F9-4AFB-B0F5-B0AE869B37FB}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Utility Scripts (64-bit) (HKLM\...\{D345FB80-FF7C-4DF0-B60A-924B7F7D1974}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Qualcomm WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm)
QuickSet64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.38 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8622 - Realtek Semiconductor Corp.)
Registrace produktu (HKLM\...\{0CB75726-FC62-4609-B5DA-0031E64F771B}) (Version: 3.0.128.0 - Název společnosti:) Hidden
Registrace produktu Dell (HKLM-x32\...\InstallShield_{0CB75726-FC62-4609-B5DA-0031E64F771B}) (Version: 3.0.128.0 - Název společnosti:)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Serviio (HKLM\...\Serviio) (Version: 2.1 - Six Lines Ltd)
SmartByte Drivers and Services (HKLM\...\{01F01829-4C5A-41B0-8198-0BDD02B34C47}) (Version: 2.0.643 - Název společnosti:)
SmartShare (HKLM-x32\...\{BAB337AE-DD9E-45C3-BED6-0EE4732AEC60}) (Version: 2.3.1712.1201 - LG Electronics Inc.)
Spyrix Free Keylogger verze 1.5 (HKLM-x32\...\Spyrix Free Keylogger_is1) (Version: 1.5 - )
ToggleVOLUME (Remove Only) (HKLM-x32\...\ToggleVOLUME) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{344F3227-F502-4219-9DC4-1967E586FAFA}) (Version: 2.51.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F49D6A65-1AB6-4728-9FDA-DB5BAB631CF6}) (Version: 1.23.0.0 - Microsoft Corporation) Hidden
VALORANT (HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Web Companion (HKLM-x32\...\{43b93b9e-c8a2-489a-a6de-dce246573f68}) (Version: 7.0.2417.4248 - Lavasoft)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.656 - McAfee, LLC)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)

Packages:
=========
Alienware Pointing Devices -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynDellWPF_19005.17013.0.0_x64__807d65c4rvak2 [2021-12-09] (Synaptics Incorporated)
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10042.0_x64__0a9344xs7nr4m [2021-12-10] (Advanced Micro Devices Inc.) [Startup Task]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2021-12-09] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.12.41.0_x86__kgqvnymyfvs32 [2021-12-09] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.207.400.0_x86__kgqvnymyfvs32 [2021-12-09] (king.com)
CyberLink Media Suite Essentials -> C:\Program Files\WindowsApps\DB6EA5DB.CyberLinkMediaSuiteEssentials_1.0.10.0_x86__mcezb6ze687jp [2021-12-09] (CYBERLINK CORPORATION.)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.9.13.0_x64__htrsf667h5kn2 [2021-12-09] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-12-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-12-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-12-09] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-12-09] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-12-09] (Netflix, Inc.)
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.27.4.0_x64__nfy108tqq3p12 [2021-12-09] (Thumbmunkeys Ltd)
PlayTo TV -> C:\Program Files\WindowsApps\DayglowsInc.PlayToTV_3.0.4.0_x64__frmkx632fhvcr [2021-12-09] (Dayglows Inc)
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2021-12-09] (Plex)
RICOH Driver Utility -> C:\Program Files\WindowsApps\3EA2211E.RICOHDriverUtility_4.7.0.0_x86__fxme7667cy4q4 [2021-12-09] (Ricoh Company, Ltd.)
Waves MaxxAudio Pro for Dell -> C:\Program Files\WindowsApps\WavesAudio.WavesMaxxAudioProforDell_1.1.131.0_x64__fh4rh281wavaa [2021-12-09] (Waves Audio)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2021-12-09] (WinZip Computing)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-04-28] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\program files\mcafee\msc\mcctxmenufrmwrk.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-04-28] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-11-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d00b147fae66a3d0\igfxDTCM.dll [2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\program files\mcafee\msc\mcctxmenufrmwrk.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.pDAD] => C:\Windows\SysWOW64\prodad-codec.dll [506392 2016-04-28] (proDAD GmbH -> proDAD GmbH)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Obchod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\vGet Cast (DLNA Controller).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=ekdjofnchpbfmnfbedalmbdlhbabiapi

==================== Loaded Modules (Whitelisted) =============

2015-06-25 15:53 - 2015-06-25 15:53 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 15:51 - 2015-06-25 15:51 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-06-25 16:34 - 2015-06-25 16:34 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 16:37 - 2015-06-25 16:37 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 16:38 - 2015-06-25 16:38 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 16:35 - 2015-06-25 16:35 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-08-09 11:15 - 2016-08-09 11:15 - 000086016 _____ (Dell Inc.) [File not signed] C:\Program Files\Dell\QuickSet\dadkeyb.dll
2020-04-20 16:48 - 2020-04-20 16:48 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2020-04-20 16:48 - 2020-04-20 16:48 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll
2018-12-04 11:10 - 2018-12-04 11:10 - 000100864 _____ (Rivet Networks) [File not signed] C:\Program Files\Rivet Networks\SmartByte\KillerNetworkServicePS.dll
2015-06-25 16:20 - 2015-06-25 16:20 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2015-06-25 16:15 - 2015-06-25 16:15 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2015-06-25 16:20 - 2015-06-25 16:20 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2015-06-25 16:15 - 2015-06-25 16:15 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2015-06-25 16:20 - 2015-06-25 16:20 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2015-06-25 16:15 - 2015-06-25 16:15 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2015-06-25 16:20 - 2015-06-25 16:20 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2015-06-25 16:17 - 2015-06-25 16:17 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2015-06-25 16:20 - 2015-06-25 16:20 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2015-06-25 16:20 - 2015-06-25 16:20 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2015-06-25 16:20 - 2015-06-25 16:20 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2015-06-25 16:21 - 2015-06-25 16:21 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2015-06-25 16:14 - 2015-06-25 16:14 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2015-07-02 11:58 - 2015-07-02 11:58 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2015-06-25 16:03 - 2015-06-25 16:03 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2015-06-25 04:13 - 2015-06-25 04:13 - 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2015-06-25 16:00 - 2015-06-25 16:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2015-06-25 16:23 - 2015-06-25 16:23 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2015-06-25 16:28 - 2015-06-25 16:28 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2015-06-25 16:16 - 2015-06-25 16:16 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2015-06-25 16:08 - 2015-06-25 16:08 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2015-06-25 16:58 - 2015-06-25 16:58 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2015-06-25 15:59 - 2015-06-25 15:59 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:2F522D1F [116]
AlternateDataStreams: C:\ProgramData\Temp:8927A071 [464]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001 -> DefaultScope {9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} URL =
SearchScopes: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001 -> {9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-12-10] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-12-10] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-03] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files\mcafee\msc\mcsniepl64.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files (x86)\mcafee\msc\mcsniepl.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 22:03 - 2021-03-07 13:05 - 000001554 ____H C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 www.amateri.com
127.0.0.1 amateri.com
127.0.0.1 http://amateri.com/cs
127.0.0.1 https://www.amateri.com
127.0.0.1 twitter.com
127.0.0.1 badoo.com
127.0.0.1 www.badoo.com
127.0.0.1 http://badoo.com
127.0.0.1 http://www.badoo.com
127.0.0.1 https://badoo.com
127.0.0.1 https://www.badoo.com
127.0.0.1 facebook.com
127.0.0.1 www.facebook.com
127.0.0.1 http://facebook.com
127.0.0.1 http://www.facebook.com
127.0.0.1 https://www.facebook.com
127.0.0.1 https://www.facebook.com/
127.0.0.1 https://facebook.com
127.0.0.1 messenger.com
127.0.0.1 www.messenger.com
127.0.0.1 http://messenger.com
127.0.0.1 http://www.messenger.com
127.0.0.1 https://messenger.com
127.0.0.1 htpps://www.messenger.com
127.0.0.1 xvideos.com
127.0.0.1 pornhub.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Obchod\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\IMG_20210411_205301.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "vidnotifier.exe"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "Web Companion"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "ut"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{59868B0A-DE52-497C-AD39-86B59F895E75}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe (LG Electronics Inc. -> )
FirewallRules: [{0867AEDC-795F-4956-855E-F0944208FD70}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe (LG Electronics Inc. -> )
FirewallRules: [{58DD433F-D567-4277-9601-CAE20C48CE80}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe (LG Electronics Inc. -> LG Electronics Inc.)
FirewallRules: [{89420073-DC9C-4CC5-B398-31584D335D33}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe (LG Electronics Inc. -> LG Electronics Inc.)
FirewallRules: [{0E7C65D7-4245-42EB-B148-1C129ECA088E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{128CD2FD-F756-48CE-8121-4AB5BDC15310}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AACF42BA-8FB1-4F7F-95B9-CCF76A68866A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{09B0879C-9D59-423A-A222-E07E0DB7334E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BA0D0451-5A95-4C2C-90F1-5C818EF5B8AD}] => (Allow) C:\Program Files\Serviio\console\ServiioConsole.exe (Six Lines Ltd) [File not signed]
FirewallRules: [{A1A54025-008F-4BBD-A8D0-F94C46CE5889}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () [File not signed]
FirewallRules: [{306453EC-9988-4D11-8903-ADC514E05C7B}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () [File not signed]
FirewallRules: [UDP Query User{59F29604-38D3-4A4F-AA30-C5C1CB30BA43}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B53F017B-10CD-424A-8AF2-3EF682003503}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7A1AD65D-D2B4-4E38-AA56-FCE9545066FE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FF9FC6E9-14AD-471D-A0CE-DFC1994C840A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{11775C10-8BC4-44BB-AA7E-84DD4595DD1C}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{74B35F4E-C957-4260-A97D-8400C06C43B7}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{7C3BAD0B-CB6A-4460-8765-C95413F3EFA1}] => (Allow) C:\Program Files (x86)\Apowersoft\Windows Shutdown Assistant\Windows Shutdown Assistant.exe
FirewallRules: [{512607F3-4F69-4036-AD59-609364CBE787}] => (Allow) C:\Program Files (x86)\Apowersoft\Windows Shutdown Assistant\Windows Shutdown Assistant.exe
FirewallRules: [{42C51F26-1DD0-4A50-891C-2F284F4F8800}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{82A74830-E1B4-4B45-93D3-A3E31D718A24}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{7DA00A23-AE83-4A33-BF38-76C9CDB3A6E4}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{1947D693-DE60-4568-B881-99153BD0B863}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [TCP Query User{425B7710-A1EE-4E89-86E2-3817D8B56335}C:\riot games\league of legends\game\league of legends.exe] => (Block) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{C176A036-F996-4495-9541-021E2B192037}C:\riot games\league of legends\game\league of legends.exe] => (Block) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{3504A77F-3D3B-464A-8284-234805E3034A}] => (Allow) C:\Users\Obchod\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{407D9EE5-CC18-4EF5-B2FE-E9B2B5DEA153}] => (Allow) C:\Users\Obchod\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{0F5A29BD-59DC-41C3-B3C3-0FE313286664}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EC795C66-BAC6-4D8F-82AC-A540D8DD0642}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{96A9D568-338D-4821-9C87-3AFD07625FEF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6BA35978-EE75-4900-BB34-02EB1C084186}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{12323684-0AFD-4D53-AAE3-60A21036ADEF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3192152C-55E7-4066-9527-66C48193679D}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1FCE332B-5164-47D1-8181-AEB4C71EF624}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D1466F47-D270-4288-9D1F-32CDF222DBE0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{32BA1096-7269-4A8F-A9F9-13BFA2D5208F}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.34\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{078AC9CC-1EE3-4DE3-898A-EE5EC8864E80}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{075BE337-FCD1-4363-899D-70B5EE38C9D7}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DC0CFCF8-7586-4EBC-866D-A7BEB327496B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8CFAD452-BC51-4E02-A4D3-AC1793976282}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

09-12-2021 20:19:38 Operace obnovení
10-12-2021 13:56:36 Removed DisplayLink Graphics

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/10/2021 03:59:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000554a50
ID chybujícího procesu: 0x3858
Čas spuštění chybující aplikace: 0x01d7edd6951ae42a
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 645e48ea-b2b2-4256-862c-f0adcb753767
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 03:59:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000041362
ID chybujícího procesu: 0x3b30
Čas spuštění chybující aplikace: 0x01d7edd6921a5572
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: 241ae0da-e0b7-4b8e-9586-8a6cdee5b4f5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 03:59:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000001b18c0
ID chybujícího procesu: 0xf10
Čas spuštění chybující aplikace: 0x01d7edd68f1bf1bb
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: f2dc8a95-cea9-4648-a0cd-d3a6cb773204
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 03:59:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000041362
ID chybujícího procesu: 0x1554
Čas spuštění chybující aplikace: 0x01d7edd68c1e1cc2
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: 8caa03c2-12fb-422e-8abb-ece204fd7122
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 03:59:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004136a
ID chybujícího procesu: 0x3e74
Čas spuštění chybující aplikace: 0x01d7edd6891e9cf7
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: 256fd1f4-7aaa-4606-a56f-c8b054171061
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 03:59:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000041362
ID chybujícího procesu: 0x4104
Čas spuštění chybující aplikace: 0x01d7edd6861c6233
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: 2f708c24-923c-45dc-a857-2095bf56c6c5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 03:59:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000041362
ID chybujícího procesu: 0x1180
Čas spuštění chybující aplikace: 0x01d7edd6831a1565
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: b912bb0c-3df8-4cab-adc6-d72e4f4734f7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 03:59:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000041362
ID chybujícího procesu: 0x3a88
Čas spuštění chybující aplikace: 0x01d7edd680168e58
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: 8e2b556c-1054-4e34-be69-8556424c1579
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (12/10/2021 03:59:33 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Služba inteligentního přenosu na pozadí skončila s následující chybou specifickou pro službu:
%%2388525606

Error: (12/10/2021 03:59:33 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Službu BITS se nezdařilo spustit. Chyba 2388525606.

Error: (12/10/2021 03:59:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O0AU14G)
Description: Server {4991D34B-80A1-4291-83B6-3328366B9097} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/10/2021 03:57:33 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Služba inteligentního přenosu na pozadí skončila s následující chybou specifickou pro službu:
%%2388525606

Error: (12/10/2021 03:57:33 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Službu BITS se nezdařilo spustit. Chyba 2388525606.

Error: (12/10/2021 03:57:28 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {4991D34B-80A1-4291-83B6-3328366B9097} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/10/2021 03:55:33 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Služba inteligentního přenosu na pozadí skončila s následující chybou specifickou pro službu:
%%2388525606

Error: (12/10/2021 03:55:33 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Službu BITS se nezdařilo spustit. Chyba 2388525606.


Windows Defender:
================
Date: 2021-05-05 02:28:08
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C49A175E-6114-43DE-954C-B2421A740F2B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2021-12-10 13:53:52
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.355.2.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18800.4
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2021-12-10 00:41:45
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.615.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2021-12-10 00:34:33
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.615.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2021-12-10 00:34:33
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.615.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2021-12-10 00:06:59
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.615.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

CodeIntegrity:
===============
Date: 2021-12-10 13:53:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-12-10 13:53:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: Dell Inc. 2.9.0 01/17/2019
Motherboard: Dell Inc.
Processor: Intel(R) Core(TM) i3-6006U CPU @ 2.00GHz
Percentage of memory in use: 78%
Total physical RAM: 3962.03 MB
Available physical RAM: 867.25 MB
Total Virtual: 8570.03 MB
Available Virtual: 3878.13 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:916.55 GB) (Free:613.07 GB) NTFS

\\?\Volume{ed959be6-4a76-4e98-8c97-42342814bc2b}\ () (Fixed) (Total:0.79 GB) (Free:0.24 GB) NTFS
\\?\Volume{0872bf90-8913-4f0a-84d8-cca94e1ebf4c}\ (Image) (Fixed) (Total:12.39 GB) (Free:0.15 GB) NTFS
\\?\Volume{7494f910-2003-4499-b5fa-4c0bb5c98b21}\ (DELLSUPPORT) (Fixed) (Total:1.17 GB) (Free:0.53 GB) NTFS
\\?\Volume{ff707426-5713-492a-8cc2-4fc6f7b0d0f9}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.42 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: FFC59383)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Rull]

přikládám log

# -------------------------------
# Malwarebytes AdwCleaner 8.3.1.0
# -------------------------------
# Build: 11-18-2021
# Database: 2021-12-02.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-10-2021
# Duration: 00:02:23
# OS: Windows 10 Home
# Cleaned: 72
# Failed: 0


***** [ Services ] *****

Deleted WCAssistantService

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Lavasoft\Web Companion
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
Deleted C:\ProgramData\Lavasoft\Web Companion
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft\WebCompanion
Deleted C:\ProgramData\rvlkl
Deleted C:\Users\Obchod\AppData\Local\Lavasoft\WEBCOMPANION.EXE_URL_SIQ0LWF3TZGXP2KHFKLLYBK3IDTBEHNG
Deleted C:\Users\Obchod\AppData\Roaming\Lavasoft\Web Companion
Deleted C:\Users\Obchod\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{43b93b9e-c8a2-489a-a6de-dce246573f68}|DisplayIcon
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{43b93b9e-c8a2-489a-a6de-dce246573f68}|DisplayName
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{43b93b9e-c8a2-489a-a6de-dce246573f68}|UninstallString
Deleted HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.CyberLinkService Folder C:\Program Files (x86)\CYBERLINK\SHARED FILES\PLUGIN\NEWBLUE
Deleted Preinstalled.CyberLinkShellExtension Registry HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2}
Deleted Preinstalled.DellCustomerConnect Folder C:\Program Files (x86)\DELL CUSTOMER CONNECT
Deleted Preinstalled.DellCustomerConnect Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{35BEC446-269E-42E4-8EED-191A38CCFF3D}
Deleted Preinstalled.DellDigitalDelivery Folder C:\Program Files (x86)\DELL DIGITAL DELIVERY
Deleted Preinstalled.DellFoundationServices Folder C:\ProgramData\DELL\DELL FOUNDATION SERVICES
Deleted Preinstalled.DellQuickset Folder C:\Program Files\DELL\QUICKSET
Deleted Preinstalled.DellQuickset Folder C:\ProgramData\DELL\QUICKSET
Deleted Preinstalled.DellQuickset Registry HKLM\Software\Classes\CLSID\{518741A2-FEDB-4917-934D-28BE560D45BA}
Deleted Preinstalled.DellQuickset Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|QuickSet
Deleted Preinstalled.DellQuickset Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|QuickSet
Deleted Preinstalled.DellQuickset Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{87CF757E-C1F1-4D22-865C-00C6950B5258}
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AUDIT
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\PLUGIN
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSIST
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSISTAGENT
Deleted Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SAREMEDIATION\PLUGIN
Deleted Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DELL\SUPPORTASSIST
Deleted Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\SUPPORTASSIST\CLIENT\TECHNICIANTOOLKIT
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B0EE1F76-F907-41EC-82B9-B045721FB316}
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0EE1F76-F907-41EC-82B9-B045721FB316}
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate
Deleted Preinstalled.DellSupportAssistAgent Task C:\Windows\System32\Tasks\DELL SUPPORTASSISTAGENT AUTOUPDATE
Deleted Preinstalled.DellSupportCenter Folder C:\Program Files\DELL SUPPORT CENTER
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATE
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATESERVICE
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATE
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DELL\UPDATE
Deleted Preinstalled.DellUpdateforWindows10 Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{5EBBC1DA-975F-44A0-B438-F325BCD45577}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{244A98A2-F2AF-47EC-81E2-54B6F65CCFEF}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CLVDLauncher
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
Deleted Preinstalled.LenovoPower2Go Task C:\Windows\System32\Tasks\CLVDLAUNCHER
Deleted Preinstalled.LenovoThinkVantageToolbox Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A2C8A314-1239-4821-ABD7-4B7CFCD61F91}
Deleted Preinstalled.LenovoThinkVantageToolbox Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2C8A314-1239-4821-ABD7-4B7CFCD61F91}
Deleted Preinstalled.LenovoThinkVantageToolbox Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDoctorBackgroundMonitorTask
Deleted Preinstalled.LenovoThinkVantageToolbox Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PC-Doctor for Windows
Deleted Preinstalled.LenovoThinkVantageToolbox Task C:\Windows\System32\Tasks\PCDOCTORBACKGROUNDMONITORTASK
Deleted Preinstalled.MyDell Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dell Support Center
Deleted Preinstalled.SamsungSmartSwitch Folder C:\Users\Obchod\AppData\Roaming\SAMSUNG\SMART SWITCH PC
Deleted Preinstalled.SmartByte Folder C:\Program Files\RIVET NETWORKS
Deleted Preinstalled.SmartByte Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RIVET NETWORKS
Deleted Preinstalled.SmartByte Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FC85712C-9290-4169-8740-901DA2795AB3}
Deleted Preinstalled.SmartByte Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SmartByte Telemetry
Deleted Preinstalled.SmartByte Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{01F01829-4C5A-41B0-8198-0BDD02B34C47}
Deleted Preinstalled.SmartByte Task C:\Windows\System32\Tasks\SMARTBYTE TELEMETRY


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [7709 octets] - [16/01/2021 20:05:06]
AdwCleaner[C00].txt - [2106 octets] - [16/01/2021 20:20:27]
AdwCleaner[S01].txt - [9454 octets] - [10/12/2021 18:04:08]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[Rull]

prikladam logy FRST

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2021
Ran by Obchod (administrator) on DESKTOP-O0AU14G (Dell Inc. Inspiron 15-3567) (10-12-2021 19:58:32)
Running from C:\Users\Obchod\Desktop
Loaded Profiles: Obchod
Platform: Microsoft Windows 10 Home Version 20H2 19042.1348 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() <==== ATTENTION [zero byte File/Folder] C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe#18E2EFCE8052C822
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\atiw.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(DISPLAYLINK (UK) LIMITED -> ) C:\Program Files\DisplayLink Core Software\DisplayLinkHotDeskService.exe <2>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_1da48d5885266bb7\esif_uf.exe
(Intel(R) Corporation -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(McAfee, Inc. -> McAfee LLC.) C:\Program Files\Common Files\mcafee\amcore\mcshield.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\csp\3.1.160.0\McCSPServiceHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\MMSSHost\MMSSHOST.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe <2>
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\PEF\CORE\PEFService.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\Common Files\mcafee\VSCore_18_12\mcapexe.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\mcafee\MfeAV\MfeAVSvc.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(McAfee, Inc. -> McAfee, LLC) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(McAfee, Inc. -> McAfee, LLC) C:\Windows\System32\mfevtps.exe <2>
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <6>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [StartCN] => c:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [8025992 2016-09-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_7b66b6662cf6d72b\RtkAudUService64.exe [1211696 2020-12-02] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3086208 2021-08-12] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [157464 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo77de.inf_amd64_9220aa0f9500a019\WavesSvc64.exe [1570400 2019-09-19] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [DisplayLinkTrayApp] => C:\Program Files\DisplayLink Core Software\DisplayLinkTrayApp.exe [6350592 2021-08-11] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1812800 2019-04-16] (Digital Wave Ltd -> Digital Wave Ltd)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [automuter] => C:\Program Files (x86)\Automuter\Automuter.exe [208896 2008-03-05] () [File not signed]
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35342976 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [uTorrent] => C:\Users\Obchod\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-13] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [ut] => C:\Users\Obchod\AppData\Roaming\uTorrent\uTorrent.exe [2091560 2021-09-13] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Run: [MicrosoftEdgeAutoLaunch_6FA1B745B6707A72507282146F8CEA03] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\RunOnce: [SeznamInstall-uninstall:c11eb685dea0d5c647be7a638d200143] => C:\Users\Obchod\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [534528 2021-12-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\MountPoints2: {eeda791b-c2f5-11eb-8a43-f8da0c443228} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [] => [X]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable
Startup: C:\Users\Obchod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ToggleVOLUME.lnk [2019-06-20]
ShortcutTarget: ToggleVOLUME.lnk -> C:\Program Files (x86)\Toggle Software\ToggleVOLUME\ToggleVOLUME.exe (Toggle Software Inc.) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {15B0E600-97AA-4293-93C9-ED45D25588F8} - System32\Tasks\CCleanerSkipUAC - Obchod => C:\Program Files\CCleaner\CCleaner.exe [29417088 2021-11-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1E1CA083-F863-4D6F-9A25-39E8A45758B3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {1F7F4994-0E29-4080-ABD7-7223996D964B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {2FD29F2E-3AAC-4721-807C-5A665956A7D5} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {41F36E90-1F23-4621-B933-AB4F011ABAB8} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe (No File)
Task: {4237C32A-6D58-412C-A5B7-79E22ACA744A} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1022656 2018-12-17] (McAfee, Inc. -> McAfee, Inc.)
Task: {489406DC-85DE-4ED0-A2A6-6E39A5219318} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4695104 2021-10-25] (McAfee, LLC -> McAfee, LLC)
Task: {4C01F3DF-173F-442B-AF5B-2B6C69D4F594} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-11-12] (Piriform Software Ltd -> Piriform)
Task: {4CB828D2-0D9B-47C4-91D3-52253FACDF6F} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {516F0BE6-B187-411E-A5C8-71F489217A11} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4969240 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
Task: {60C75A7C-4753-42B1-A08F-72D81D8EC7B9} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_a93205b6238060e4\lib\IntelPTTEKRecertification.exe [919832 2020-11-17] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {63F0E261-3850-4876-8A3D-4BD523AF41AC} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {6F66A249-734D-4D19-BA75-D856D641D3B6} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7700FF3C-17D5-4D22-BE51-23C2A49445B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-02-19] (Google Inc -> Google LLC)
Task: {7A7B7CA3-CA4F-43D7-BD5C-10FEE0A18721} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [756672 2018-11-13] (McAfee, Inc. -> McAfee, Inc.)
Task: {914F1BC1-22F7-4F21-8523-75D1D70BFE1A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {950D2E46-DEDA-4CA4-BA58-08D826ABB146} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
Task: {9750C514-2DA5-4AF6-8E7A-EFEA56D17D1A} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe [513216 2017-12-12] (LG Electronics Inc. -> LG Electronics Inc.)
Task: {9C6D765C-866A-4BD6-9FA2-304E743C9F7F} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [616232 2016-11-28] (Dropbox, Inc -> DropboxOEM)
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleanerSkipUAC - Obchod" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore1d72758a6dfe56b" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {B6E8B65F-C7C8-483E-84E7-7F7AE2718B28} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {C1F90728-E5D8-4373-9226-6FAB957578D4} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe -lloc dataupload --ignoresecondarysplash --runsilently --skipidlewait (No File)
Task: {D243F037-5006-4DC6-BE10-9E75B71901B1} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently (No File)
Task: {D38E5244-DC87-4C0D-9AD2-15C640E0FBD9} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [1022656 2018-12-17] (McAfee, Inc. -> McAfee, Inc.)
Task: {DD2586EC-42CA-4022-B16F-CEE7F4A5DC67} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBBF805D-A5A6-4A9A-9412-15E381645D5A} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.6.110\DADUpdater.exe [4119992 2021-10-07] (McAfee, LLC -> McAfee, LLC)
Task: {F571662C-2A47-454E-9E70-97FD02128240} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {FAAA8216-4BEB-483B-8685-214405E4ED67} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-02-19] (Google Inc -> Google LLC)
Task: {FBE3283C-DF78-4686-8273-860DDDE7124F} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe [110008 2016-04-27] (CyberLink Corp. -> CyberLink)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{463eae46-2781-4067-bd7c-c1c276a82a17}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ad04aa99-6b73-4694-b21a-6907663b053b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d693f181-322f-4c48-ac17-9cfccefca56d}: [DhcpNameServer] 192.168.1.1 8.8.8.8 217.112.162.34 217.112.160.1

Edge:
=======
DownloadDir: C:\Users\Obchod\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Obchod\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-10]

FireFox:
========
FF DefaultProfile: 5k3goyrr.default
FF ProfilePath: C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\5k3goyrr.default [2021-08-24]
FF Homepage: Mozilla\Firefox\Profiles\5k3goyrr.default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF NewTab: Mozilla\Firefox\Profiles\5k3goyrr.default -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF ProfilePath: C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release [2021-12-10]
FF Homepage: Mozilla\Firefox\Profiles\rwbsys31.default-release -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF NewTab: Mozilla\Firefox\Profiles\rwbsys31.default-release -> hxxps://poshukach.com?fr=ps&gp=496723&altserp=1
FF Extension: (Porn Blocker) - C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release\Extensions\@porn-blocker.xpi [2020-10-30]
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2021-12-10]
FF Extension: (MagicCast) - C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release\Extensions\{ecd940bf-4984-494f-857b-25ebbdeff8c9}.xpi [2020-11-25]
FF SearchPlugin: C:\Users\Obchod\AppData\Roaming\Mozilla\Firefox\Profiles\rwbsys31.default-release\searchplugins\Poshukach Engin Search.xml [2021-08-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @mcafee.com/MSC,version=10 -> c:\program files\mcafee\msc\npmcsnffpl64.dll [2019-02-15] (McAfee, Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\program files (x86)\mcafee\msc\npmcsnffpl.dll [2019-02-15] (McAfee, Inc. -> )
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default [2021-12-10]
CHR Notifications: Default -> hxxps://filmplanet.to; hxxps://hellopushworld.com; hxxps://www.facebook.com; hxxps://www.ufreegames.com
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E211CZ105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-17]
CHR Extension: (Safe Torrent Scanner) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2021-08-13]
CHR Extension: (Dokumenty) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-17]
CHR Extension: (Disk Google) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-27]
CHR Extension: (YouTube) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-17]
CHR Extension: (vGet Cast (DLNA Controller)) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekdjofnchpbfmnfbedalmbdlhbabiapi [2020-11-25]
CHR Extension: (Tabulky) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-17]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2021-11-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-13]
CHR Extension: (Gmail) - C:\Users\Obchod\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-27]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8480848 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [452888 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [452888 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-06-01] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1752480 2017-02-24] (McAfee, Inc. -> Intel Security)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [422128 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3975712 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [623136 2021-03-09] (Dell Technologies Inc. -> Dell Technologies Inc.)
S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-04-16] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 DisplayLinkHotDeskService; C:\Program Files\DisplayLink Core Software\DisplayLinkHotDeskService.exe [2836224 2021-08-11] (DISPLAYLINK (UK) LIMITED -> )
S2 jwqmzdzzdvsqsb; c:\windows\SysWOW64\vcakagds.exe [318464 2020-02-25] () [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [971504 2021-12-10] (McAfee, LLC -> McAfee, LLC)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_18_12\McApExe.exe [745880 2019-01-23] (McAfee, Inc. -> McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [454560 2017-01-16] (McAfee, Inc. -> McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\3.1.160.0\\McCSPServiceHost.exe [2158952 2018-12-17] (McAfee, Inc. -> McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [371840 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [604216 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [509728 2019-01-15] (McAfee, Inc. -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1692552 2018-12-19] (McAfee, Inc. -> McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [1360384 2019-02-05] (McAfee, Inc. -> McAfee, Inc.)
S2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [46632 2017-04-17] (Dell Inc -> Dell)
S2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2015-09-02] (CyberLink Corp. -> CyberLink)
S2 Serviio; C:\Program Files\Serviio\bin\ServiioService.exe [413696 2020-05-03] () [File not signed]
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10101336 2021-08-12] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-03-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 Dell Customer Connect; "C:\Program Files (x86)\Dell Customer Connect\DCCService.exe" [X]
S2 Dell Hardware Support; "C:\Program Files\Dell\SupportAssistAgent\PCD\SupportAssist\Dsapi.exe" [X]
S2 DellClientManagementService; "C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe" [X]
S2 DellDigitalDelivery; "C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe" [X]
S2 RNDBWM; "C:\Program Files\Rivet Networks\SmartByte\RNDBWMService.exe" [X]
R2 SmartByte Network Service x64; "C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe" [X]
S2 SupportAssistAgent; "C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [222128 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [368152 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [251928 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-30] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [185216 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [538992 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107848 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [852752 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [544096 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214352 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317680 2021-12-10] (Avast Software s.r.o. -> AVAST Software)
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77384 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 DDDriver; C:\WINDOWS\System32\drivers\dddriver64Dcsa.sys [42376 2020-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Dell Inc.)
S3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32952 2016-10-13] (Techporch Incorporated -> Dell Computer Corporation)
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_skl.inf_amd64_2a35efc43f1a612e\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [511024 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [373808 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [86136 2019-01-22] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, LLC)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [517168 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [981032 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [563728 2018-11-19] (McAfee, Inc. -> McAfee LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [109072 2018-11-19] (McAfee, Inc. -> McAfee LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [117800 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [254024 2019-01-22] (McAfee, Inc. -> McAfee, LLC)
R3 SmbCoSvc; C:\WINDOWS\system32\DRIVERS\SmbCo10X64.sys [120008 2018-12-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [8236288 2021-08-12] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49544 2021-03-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [420088 2021-03-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72952 2021-03-06] (Microsoft Windows -> Microsoft Corporation)
S4 amdkmdap; \SystemRoot\System32\DriverStore\FileRepository\c0348883.inf_amd64_4e4c62fc8d502413\B346206\atikmpag.sys [X]
R2 DpmLiteDrv; \??\c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [X]
S4 iaStorA; \SystemRoot\System32\drivers\iaStorA.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-10 20:02 - 2021-12-10 20:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2021-12-10 19:58 - 2021-12-10 20:04 - 000032442 _____ C:\Users\Obchod\Desktop\FRST.txt
2021-12-10 18:01 - 2021-12-10 18:01 - 008540344 _____ (Malwarebytes) C:\Users\Obchod\Downloads\adwcleaner_8.3.1.exe
2021-12-10 16:17 - 2021-12-10 16:17 - 002311168 _____ (Farbar) C:\Users\Obchod\Downloads\FRST64.exe
2021-12-10 14:35 - 2021-12-10 14:36 - 002311168 _____ (Farbar) C:\Users\Obchod\Downloads\FRST64 (1).exe
2021-12-10 14:34 - 2021-12-10 14:36 - 002311168 _____ (Farbar) C:\Users\Obchod\Desktop\FRST64.exe
2021-12-10 12:54 - 2021-12-10 12:54 - 000000000 ____D C:\Program Files\DisplayLink Core Software
2021-12-10 12:28 - 2021-12-10 12:33 - 081137392 _____ (DisplayLink Corp.) C:\Users\Obchod\Downloads\DisplayLink USB Graphics Software for Windows with Hot Desking10.1 M2-EXE.exe
2021-12-10 12:24 - 2021-12-10 12:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-12-10 11:02 - 2021-12-10 10:58 - 000340248 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-12-10 11:01 - 2021-12-10 10:59 - 000214352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-12-10 00:30 - 2021-12-10 13:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-12-10 00:00 - 2021-12-10 13:17 - 000000000 ____D C:\ProgramData\McInstTemp0264271639090807
2021-11-28 19:32 - 2021-12-10 00:43 - 000002078 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-11-11 19:11 - 2021-11-11 19:11 - 000011363 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-11 19:09 - 2021-11-11 19:09 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-11-11 19:08 - 2021-11-11 19:08 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-11 19:03 - 2021-11-11 19:03 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-11-11 17:20 - 2021-11-11 17:20 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-10 20:02 - 2021-01-16 11:17 - 000000000 ____D C:\FRST
2021-12-10 19:57 - 2021-04-02 01:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-10 19:57 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-10 19:53 - 2021-01-16 22:10 - 000000000 ____D C:\Program Files\CCleaner
2021-12-10 19:19 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-12-10 19:18 - 2021-02-19 12:55 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-10 18:37 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-10 18:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-10 18:13 - 2020-03-16 19:19 - 000000000 ____D C:\Users\Obchod\AppData\LocalLow\Mozilla
2021-12-10 18:11 - 2021-08-13 08:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2021-12-10 18:11 - 2021-08-13 08:07 - 000000000 ____D C:\Users\Obchod\AppData\Roaming\Lavasoft
2021-12-10 18:11 - 2021-08-13 08:07 - 000000000 ____D C:\Users\Obchod\AppData\Local\Lavasoft
2021-12-10 18:11 - 2021-08-13 08:06 - 000000000 ____D C:\Program Files (x86)\Lavasoft
2021-12-10 18:11 - 2021-08-13 08:05 - 000000000 ____D C:\ProgramData\Lavasoft
2021-12-10 18:11 - 2020-07-31 21:49 - 000000000 ____D C:\Users\Obchod\AppData\Roaming\Samsung
2021-12-10 18:11 - 2017-06-15 11:19 - 000000000 ____D C:\ProgramData\Dell
2021-12-10 18:11 - 2017-06-15 11:15 - 000000000 ____D C:\Program Files (x86)\Dell
2021-12-10 18:11 - 2017-06-15 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2021-12-10 18:10 - 2017-06-15 11:10 - 000000000 ____D C:\Program Files\Dell
2021-12-10 18:09 - 2020-11-27 12:50 - 000000000 ____D C:\Users\Obchod\AppData\Local\CrashDumps
2021-12-10 14:43 - 2021-01-17 12:03 - 000000000 ____D C:\Users\Obchod\Desktop\Nová složka (2)
2021-12-10 14:10 - 2019-03-26 15:30 - 000000000 ____D C:\Users\Obchod\AppData\Local\Packages
2021-12-10 14:03 - 2020-12-27 12:48 - 000000000 ____D C:\Users\Obchod\AppData\Local\AVAST Software
2021-12-10 13:23 - 2020-11-27 12:33 - 000000000 ____D C:\ProgramData\Avast Software
2021-12-10 13:20 - 2019-03-26 15:29 - 000000000 __SHD C:\Users\Obchod\IntelGraphicsProfiles
2021-12-10 13:18 - 2021-04-02 02:41 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-12-10 13:17 - 2020-06-12 12:37 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2021-12-10 13:17 - 2017-06-15 11:40 - 000000000 ____D C:\Program Files (x86)\McAfee
2021-12-10 13:16 - 2019-02-23 17:13 - 000000000 ____D C:\Intel
2021-12-10 13:15 - 2021-04-02 02:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-12-10 13:15 - 2021-04-02 01:09 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-10 13:15 - 2020-03-16 19:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-12-10 13:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-12-10 13:13 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-12-10 13:12 - 2021-11-03 10:27 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-12-10 13:10 - 2021-08-13 08:13 - 000000000 ____D C:\Users\Obchod\AppData\Roaming\uTorrent
2021-12-10 12:30 - 2020-06-10 00:02 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-10 12:24 - 2020-03-16 19:19 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-12-10 12:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-12-10 11:46 - 2019-04-19 14:22 - 000000000 ____D C:\ProgramData\Packages
2021-12-10 11:39 - 2021-04-15 16:36 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d72758a6dfe56b
2021-12-10 11:39 - 2021-04-02 02:41 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-10 11:38 - 2017-06-15 11:54 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-10 11:26 - 2021-04-02 01:39 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-10 11:26 - 2019-12-07 15:41 - 000717850 _____ C:\WINDOWS\system32\perfh005.dat
2021-12-10 11:26 - 2019-12-07 15:41 - 000144992 _____ C:\WINDOWS\system32\perfc005.dat
2021-12-10 11:02 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-12-10 10:59 - 2020-11-27 12:43 - 000544096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000538992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000317680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000251928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000185216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000107848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-12-10 10:59 - 2020-11-27 12:43 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-12-10 10:57 - 2020-11-27 12:43 - 000852752 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-12-10 10:57 - 2020-11-27 12:43 - 000222128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-12-10 10:57 - 2020-11-27 12:43 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-12-10 10:56 - 2020-11-27 12:43 - 000368152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-12-10 10:28 - 2021-08-13 08:08 - 000000000 ____D C:\Users\Obchod\AppData\Local\BitTorrentHelper
2021-12-10 10:27 - 2021-09-13 22:37 - 000000000 ____D C:\Users\Obchod\AppData\LocalLow\uTorrent
2021-12-10 00:43 - 2020-11-27 12:59 - 000002090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2021-12-09 23:44 - 2021-08-20 09:53 - 000002256 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Obchod
2021-12-09 23:44 - 2021-04-02 02:41 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-12-09 23:44 - 2021-04-02 02:41 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-12-09 23:44 - 2021-04-02 02:41 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-12-09 23:33 - 2021-04-02 01:21 - 000000000 ____D C:\Users\Obchod
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-12-09 23:27 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-09 23:24 - 2021-04-02 02:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-12-09 23:24 - 2019-04-20 08:15 - 000000000 ____D C:\Users\Obchod\AppData\Roaming\DVDVideoSoft
2021-12-09 22:23 - 2021-02-19 13:03 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-09 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2021-12-05 20:04 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-11-13 23:06 - 2021-04-02 01:10 - 000432416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-13 23:03 - 2017-06-15 11:28 - 000000934 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-11-13 23:03 - 2017-06-15 11:28 - 000000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-13 23:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-13 23:00 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-13 23:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-11-13 23:00 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-11-12 17:41 - 2021-04-02 02:41 - 000003894 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-11-12 17:41 - 2021-04-02 02:41 - 000003662 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-11-11 19:35 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-11 17:07 - 2019-04-17 20:34 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-11 16:51 - 2019-04-17 20:33 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2020-06-04 20:51 - 2021-01-17 08:07 - 000003217 _____ () C:\Users\Obchod\AppData\Local\PlariumPlay.log
2021-04-06 14:00 - 2021-04-06 14:00 - 000000000 _____ () C:\Users\Obchod\AppData\Local\{8D811739-FAD1-40FB-8A18-2B3DBE10EAEC}
2021-04-06 13:56 - 2021-04-06 13:56 - 000000000 _____ () C:\Users\Obchod\AppData\Local\{EEC0830D-7CEB-4274-81DD-3EC504CA9204}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[Rull]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-12-2021
Ran by Obchod (10-12-2021 20:08:39)
Running from C:\Users\Obchod\Desktop
Microsoft Windows 10 Home Version 20H2 19042.1348 (X64) (2021-04-02 01:44:36)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2166850603-1525175105-4254810413-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2166850603-1525175105-4254810413-503 - Limited - Disabled)
Guest (S-1-5-21-2166850603-1525175105-4254810413-501 - Limited - Disabled)
Obchod (S-1-5-21-2166850603-1525175105-4254810413-1001 - Administrator - Enabled) => C:\Users\Obchod
WDAGUtilityAccount (S-1-5-21-2166850603-1525175105-4254810413-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: McAfee VirusScan (Disabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Automuter 2.2 (HKLM-x32\...\Automuter_is1) (Version: - automuter.com)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.10.2498 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.87 - Piriform)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 12 - CyberLink Corp.)
Dell Digital Delivery (HKLM-x32\...\{4B38FF9D-7308-411D-93BF-CCF259B476ED}) (Version: 3.5.2013.0 - Dell Products, LP)
Dell SupportAssist (HKLM\...\{A3E44B1D-1AC1-414F-A7D4-0824E0A49F3A}) (Version: 3.9.1.245 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{900D0BCD-0B86-4DAA-B639-89BE70449569}) (Version: 5.4.1.14954 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{ec40a028-983b-4213-af2c-77ed6f6fe1d5}) (Version: 5.4.1.14954 - Dell Inc.)
DisplayLink Graphics (HKLM\...\{4359E6CE-7162-4B47-BE64-A0B82D47AA07}) (Version: 10.1.2875.0 - DisplayLink Corp.)
Dropbox 20 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.541.1 - Dropbox, Inc.) Hidden
DSC/AA Factory Installer (HKLM\...\{F7A70D00-F283-45C8-B163-49EC365D7E27}) (Version: 1.3.6855.72 - PC-Doctor, Inc.) Hidden
FlatOut Demo (HKLM-x32\...\{4B682CF4-9B41-4297-8B13-968B28B864C6}) (Version: 1.01.0000 - Empire Interactive)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.97.416 - Digital Wave Ltd)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11000.2996 - Intel Corporation)
Intel(R) HID Event Filter (HKLM-x32\...\3FB06EEC-013D-4366-9918-71B97DFB84EB) (Version: 1.1.0.317 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1025 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel® Software Guard Extensions Platform Software (HKLM\...\{06F94C28-DE1D-485F-AD91-333ACEB3F52D}) (Version: 1.6.100.32677 - Intel Corporation)
Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9669.4 - Waves Audio Ltd.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R18 - McAfee, Inc.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14701.20226 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.43 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.34 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\OneDriveSetup.exe) (Version: 21.052.0314.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{650c9b4a-60ec-4e4e-8d8e-32d85ce3b7c5}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30040 (HKLM-x32\...\{5c6cccca-61ec-4667-a8d9-e133a59a5a73}) (Version: 14.29.30040.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 95.0 (x64 cs)) (Version: 95.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20210 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
proDAD Adorage 3.0 (HKLM-x32\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH)
Python 3.9.2 (64-bit) (HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\{3973ea30-aa45-4804-9840-93a305a0d632}) (Version: 3.9.2150.0 - Python Software Foundation)
Python 3.9.2 Core Interpreter (64-bit) (HKLM\...\{1F050E31-5E11-4184-B791-8FD5070C55AA}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Development Libraries (64-bit) (HKLM\...\{EA736F6F-172B-4D18-831E-B5DFB2EA5057}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Documentation (64-bit) (HKLM\...\{FDD5FBD7-2E89-496E-B0CE-19FA26F3C347}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Executables (64-bit) (HKLM\...\{701FA3EE-56EB-422A-A2D9-FFFE12E53A5E}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 pip Bootstrap (64-bit) (HKLM\...\{ECCE5BC5-9400-4BB7-82F4-3699308CCC18}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Standard Library (64-bit) (HKLM\...\{D5638C16-6D72-4A80-B101-07B6B9C92273}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Tcl/Tk Support (64-bit) (HKLM\...\{0281F202-0833-49D8-8145-530021FF2CA2}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Test Suite (64-bit) (HKLM\...\{73AB4143-E6F9-4AFB-B0F5-B0AE869B37FB}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Python 3.9.2 Utility Scripts (64-bit) (HKLM\...\{D345FB80-FF7C-4DF0-B60A-924B7F7D1974}) (Version: 3.9.2150.0 - Python Software Foundation) Hidden
Qualcomm WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8622 - Realtek Semiconductor Corp.)
Registrace produktu (HKLM\...\{0CB75726-FC62-4609-B5DA-0031E64F771B}) (Version: 3.0.128.0 - Název společnosti:) Hidden
Registrace produktu Dell (HKLM-x32\...\InstallShield_{0CB75726-FC62-4609-B5DA-0031E64F771B}) (Version: 3.0.128.0 - Název společnosti:)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Serviio (HKLM\...\Serviio) (Version: 2.1 - Six Lines Ltd)
SmartShare (HKLM-x32\...\{BAB337AE-DD9E-45C3-BED6-0EE4732AEC60}) (Version: 2.3.1712.1201 - LG Electronics Inc.)
Spyrix Free Keylogger verze 1.5 (HKLM-x32\...\Spyrix Free Keylogger_is1) (Version: 1.5 - )
ToggleVOLUME (Remove Only) (HKLM-x32\...\ToggleVOLUME) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{344F3227-F502-4219-9DC4-1967E586FAFA}) (Version: 2.51.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F49D6A65-1AB6-4728-9FDA-DB5BAB631CF6}) (Version: 1.23.0.0 - Microsoft Corporation) Hidden
VALORANT (HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.656 - McAfee, LLC)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)

Packages:
=========
Alienware Pointing Devices -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynDellWPF_19005.17013.0.0_x64__807d65c4rvak2 [2021-12-09] (Synaptics Incorporated)
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.10042.0_x64__0a9344xs7nr4m [2021-12-10] (Advanced Micro Devices Inc.) [Startup Task]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2021-12-09] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.12.41.0_x86__kgqvnymyfvs32 [2021-12-09] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.208.400.0_x86__kgqvnymyfvs32 [2021-12-10] (king.com)
CyberLink Media Suite Essentials -> C:\Program Files\WindowsApps\DB6EA5DB.CyberLinkMediaSuiteEssentials_1.0.10.0_x86__mcezb6ze687jp [2021-12-09] (CYBERLINK CORPORATION.)
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.9.13.0_x64__htrsf667h5kn2 [2021-12-09] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-12-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-12-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-12-09] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-12-09] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-12-09] (Netflix, Inc.)
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.27.4.0_x64__nfy108tqq3p12 [2021-12-09] (Thumbmunkeys Ltd)
PlayTo TV -> C:\Program Files\WindowsApps\DayglowsInc.PlayToTV_3.0.4.0_x64__frmkx632fhvcr [2021-12-09] (Dayglows Inc)
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2021-12-09] (Plex)
RICOH Driver Utility -> C:\Program Files\WindowsApps\3EA2211E.RICOHDriverUtility_4.7.0.0_x86__fxme7667cy4q4 [2021-12-09] (Ricoh Company, Ltd.)
Waves MaxxAudio Pro for Dell -> C:\Program Files\WindowsApps\WavesAudio.WavesMaxxAudioProforDell_1.1.131.0_x64__fh4rh281wavaa [2021-12-09] (Waves Audio)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2021-12-09] (WinZip Computing)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\program files\mcafee\msc\mcctxmenufrmwrk.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-11-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_d00b147fae66a3d0\igfxDTCM.dll [2020-12-14] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-12-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\program files\mcafee\msc\mcctxmenufrmwrk.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.pDAD] => C:\Windows\SysWOW64\prodad-codec.dll [506392 2016-04-28] (proDAD GmbH -> proDAD GmbH)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Obchod\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\vGet Cast (DLNA Controller).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=ekdjofnchpbfmnfbedalmbdlhbabiapi

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:2F522D1F [116]
AlternateDataStreams: C:\ProgramData\Temp:8927A071 [464]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001 -> DefaultScope {9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} URL =
SearchScopes: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001 -> {9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-12-10] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-12-10] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-03] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files\mcafee\msc\mcsniepl64.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\program files (x86)\mcafee\msc\mcsniepl.dll [2019-02-15] (McAfee, Inc. -> McAfee, Inc.)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 22:03 - 2021-03-07 13:05 - 000001554 ____H C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 www.amateri.com
127.0.0.1 amateri.com
127.0.0.1 http://amateri.com/cs
127.0.0.1 https://www.amateri.com
127.0.0.1 twitter.com
127.0.0.1 badoo.com
127.0.0.1 www.badoo.com
127.0.0.1 http://badoo.com
127.0.0.1 http://www.badoo.com
127.0.0.1 https://badoo.com
127.0.0.1 https://www.badoo.com
127.0.0.1 facebook.com
127.0.0.1 www.facebook.com
127.0.0.1 http://facebook.com
127.0.0.1 http://www.facebook.com
127.0.0.1 https://www.facebook.com
127.0.0.1 https://www.facebook.com/
127.0.0.1 https://facebook.com
127.0.0.1 messenger.com
127.0.0.1 www.messenger.com
127.0.0.1 http://messenger.com
127.0.0.1 http://www.messenger.com
127.0.0.1 https://messenger.com
127.0.0.1 htpps://www.messenger.com
127.0.0.1 xvideos.com
127.0.0.1 pornhub.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Obchod\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\IMG_20210411_205301.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "vidnotifier.exe"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\StartupApproved\Run: => "ut"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{59868B0A-DE52-497C-AD39-86B59F895E75}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe (LG Electronics Inc. -> )
FirewallRules: [{0867AEDC-795F-4956-855E-F0944208FD70}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMR\SmartShareDMR.exe (LG Electronics Inc. -> )
FirewallRules: [{58DD433F-D567-4277-9601-CAE20C48CE80}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe (LG Electronics Inc. -> LG Electronics Inc.)
FirewallRules: [{89420073-DC9C-4CC5-B398-31584D335D33}] => (Allow) C:\Program Files (x86)\LG Software\LG Smart Share\DMS\SmartShareDMS.exe (LG Electronics Inc. -> LG Electronics Inc.)
FirewallRules: [{0E7C65D7-4245-42EB-B148-1C129ECA088E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{128CD2FD-F756-48CE-8121-4AB5BDC15310}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AACF42BA-8FB1-4F7F-95B9-CCF76A68866A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{09B0879C-9D59-423A-A222-E07E0DB7334E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BA0D0451-5A95-4C2C-90F1-5C818EF5B8AD}] => (Allow) C:\Program Files\Serviio\console\ServiioConsole.exe (Six Lines Ltd) [File not signed]
FirewallRules: [{A1A54025-008F-4BBD-A8D0-F94C46CE5889}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () [File not signed]
FirewallRules: [{306453EC-9988-4D11-8903-ADC514E05C7B}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () [File not signed]
FirewallRules: [UDP Query User{59F29604-38D3-4A4F-AA30-C5C1CB30BA43}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B53F017B-10CD-424A-8AF2-3EF682003503}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7A1AD65D-D2B4-4E38-AA56-FCE9545066FE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FF9FC6E9-14AD-471D-A0CE-DFC1994C840A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{11775C10-8BC4-44BB-AA7E-84DD4595DD1C}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{74B35F4E-C957-4260-A97D-8400C06C43B7}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{7C3BAD0B-CB6A-4460-8765-C95413F3EFA1}] => (Allow) C:\Program Files (x86)\Apowersoft\Windows Shutdown Assistant\Windows Shutdown Assistant.exe
FirewallRules: [{512607F3-4F69-4036-AD59-609364CBE787}] => (Allow) C:\Program Files (x86)\Apowersoft\Windows Shutdown Assistant\Windows Shutdown Assistant.exe
FirewallRules: [{42C51F26-1DD0-4A50-891C-2F284F4F8800}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{82A74830-E1B4-4B45-93D3-A3E31D718A24}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{7DA00A23-AE83-4A33-BF38-76C9CDB3A6E4}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{1947D693-DE60-4568-B881-99153BD0B863}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [TCP Query User{425B7710-A1EE-4E89-86E2-3817D8B56335}C:\riot games\league of legends\game\league of legends.exe] => (Block) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{C176A036-F996-4495-9541-021E2B192037}C:\riot games\league of legends\game\league of legends.exe] => (Block) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{3504A77F-3D3B-464A-8284-234805E3034A}] => (Allow) C:\Users\Obchod\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{407D9EE5-CC18-4EF5-B2FE-E9B2B5DEA153}] => (Allow) C:\Users\Obchod\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{0F5A29BD-59DC-41C3-B3C3-0FE313286664}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EC795C66-BAC6-4D8F-82AC-A540D8DD0642}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{96A9D568-338D-4821-9C87-3AFD07625FEF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6BA35978-EE75-4900-BB34-02EB1C084186}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{12323684-0AFD-4D53-AAE3-60A21036ADEF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3192152C-55E7-4066-9527-66C48193679D}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1FCE332B-5164-47D1-8181-AEB4C71EF624}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D1466F47-D270-4288-9D1F-32CDF222DBE0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{32BA1096-7269-4A8F-A9F9-13BFA2D5208F}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.34\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{078AC9CC-1EE3-4DE3-898A-EE5EC8864E80}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{075BE337-FCD1-4363-899D-70B5EE38C9D7}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DC0CFCF8-7586-4EBC-866D-A7BEB327496B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8CFAD452-BC51-4E02-A4D3-AC1793976282}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

10-12-2021 13:56:36 Removed DisplayLink Graphics
10-12-2021 18:07:25 AdwCleaner_BeforeCleaning_10/12/2021_18:07:23

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/10/2021 06:09:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000063ff20
ID chybujícího procesu: 0x3c20
Čas spuštění chybující aplikace: 0x01d7ede8b105357a
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 83ef8b47-b1e7-40e0-8b82-9b9a0ea17eea
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 06:09:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000053f5b0
ID chybujícího procesu: 0x3ee4
Čas spuštění chybující aplikace: 0x01d7ede8abc076a1
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 87e4a7bb-9c2d-4a49-a55d-5d79e5afbae2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 06:08:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000041362
ID chybujícího procesu: 0x3f70
Čas spuštění chybující aplikace: 0x01d7ede890ad6041
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: fe9f6cb8-e2dd-427b-8fe9-d1f70aecff1f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 06:08:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000005c8a50
ID chybujícího procesu: 0x4280
Čas spuštění chybující aplikace: 0x01d7ede88d80184b
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: b46074bc-ff6c-4e16-973a-338b498e64b0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 06:08:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000041362
ID chybujícího procesu: 0x1f04
Čas spuštění chybující aplikace: 0x01d7ede88a7cf3ba
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: e53164e1-0506-4379-a12b-466f73228b0e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 06:08:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004136a
ID chybujícího procesu: 0x2848
Čas spuštění chybující aplikace: 0x01d7ede8877faa33
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: d1dad32c-3503-4280-a92c-0cba7c9fca0e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 06:08:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004136a
ID chybujícího procesu: 0x3e70
Čas spuštění chybující aplikace: 0x01d7ede884804023
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: 36314751-57b5-463f-9772-5e7d4e9d5fdb
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2021 06:08:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Název chybujícího modulu: SynTPEnh.exe, verze: 19.5.17.18, časové razítko: 0x60c8d547
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004136a
ID chybujícího procesu: 0x40a4
Čas spuštění chybující aplikace: 0x01d7ede88180fbef
Cesta k chybující aplikaci: C:\WINDOWS\System32\SynTPEnh.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\SynTPEnh.exe
ID zprávy: 5fb035b7-f23a-4933-9208-033ef593780c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (12/10/2021 08:38:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O0AU14G)
Description: Server {4991D34B-80A1-4291-83B6-3328366B9097} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/10/2021 08:36:35 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Služba inteligentního přenosu na pozadí skončila s následující chybou specifickou pro službu:
%%2388525606

Error: (12/10/2021 08:36:35 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Službu BITS se nezdařilo spustit. Chyba 2388525606.

Error: (12/10/2021 08:36:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O0AU14G)
Description: Server {F087771F-D74F-4C1A-BB8A-E16ACA9124EA} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/10/2021 08:34:34 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Služba inteligentního přenosu na pozadí skončila s následující chybou specifickou pro službu:
%%2388525606

Error: (12/10/2021 08:34:34 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Službu BITS se nezdařilo spustit. Chyba 2388525606.

Error: (12/10/2021 08:34:30 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-O0AU14G)
Description: Server {6D18AD12-BDE3-4393-B311-099C346E6DF9} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/10/2021 08:32:34 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Služba inteligentního přenosu na pozadí skončila s následující chybou specifickou pro službu:
%%2388525606


Windows Defender:
================
Date: 2021-05-05 02:28:08
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C49A175E-6114-43DE-954C-B2421A740F2B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2021-12-10 13:53:52
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.355.2.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18800.4
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2021-12-10 00:41:45
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.615.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2021-12-10 00:34:33
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.615.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2021-12-10 00:34:33
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.615.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2021-12-10 00:06:59
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.615.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

CodeIntegrity:
===============
Date: 2021-12-10 18:29:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-12-10 18:29:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2021-12-10 13:53:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-12-10 13:53:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: Dell Inc. 2.9.0 01/17/2019
Motherboard: Dell Inc.
Processor: Intel(R) Core(TM) i3-6006U CPU @ 2.00GHz
Percentage of memory in use: 79%
Total physical RAM: 3962.03 MB
Available physical RAM: 802.88 MB
Total Virtual: 8570.03 MB
Available Virtual: 3905.72 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:916.55 GB) (Free:620.35 GB) NTFS

\\?\Volume{ed959be6-4a76-4e98-8c97-42342814bc2b}\ () (Fixed) (Total:0.79 GB) (Free:0.24 GB) NTFS
\\?\Volume{0872bf90-8913-4f0a-84d8-cca94e1ebf4c}\ (Image) (Fixed) (Total:12.39 GB) (Free:0.15 GB) NTFS
\\?\Volume{7494f910-2003-4499-b5fa-4c0bb5c98b21}\ (DELLSUPPORT) (Fixed) (Total:1.17 GB) (Free:0.53 GB) NTFS
\\?\Volume{ff707426-5713-492a-8cc2-4fc6f7b0d0f9}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.42 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: FFC59383)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\ProgramData\Temp:2F522D1F [116]
AlternateDataStreams: C:\ProgramData\Temp:8927A071 [464]
SearchScopes: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001 -> DefaultScope {9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} URL =
SearchScopes: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001 -> {9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} URL =
C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe#18E2EFCE8052C822
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\MountPoints2: {eeda791b-c2f5-11eb-8a43-f8da0c443228} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {41F36E90-1F23-4621-B933-AB4F011ABAB8} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe (No File)
Task: {7700FF3C-17D5-4D22-BE51-23C2A49445B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-02-19] (Google Inc -> Google LLC)
Task: {C1F90728-E5D8-4373-9226-6FAB957578D4} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe -lloc dataupload --ignoresecondarysplash --runsilently --skipidlewait (No File)
Task: {D243F037-5006-4DC6-BE10-9E75B71901B1} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently (No File)
Task: {FAAA8216-4BEB-483B-8685-214405E4ED67} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-02-19] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Obchod\AppData\Local\{8D811739-FAD1-40FB-8A18-2B3DBE10EAEC}
C:\Users\Obchod\AppData\Local\{EEC0830D-7CEB-4274-81DD-3EC504CA9204}

EmptyTemp:
Hosts:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Rull]

hotovo ,zde je

Fix result of Farbar Recovery Scan Tool (x64) Version: 06-12-2021
Ran by Obchod (10-12-2021 21:20:56) Run:2
Running from C:\Users\Obchod\Desktop
Loaded Profiles: Obchod
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\ProgramData\Temp:2F522D1F [116]
AlternateDataStreams: C:\ProgramData\Temp:8927A071 [464]
SearchScopes: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001 -> DefaultScope {9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} URL =
SearchScopes: HKU\S-1-5-21-2166850603-1525175105-4254810413-1001 -> {9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} URL =
C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe#18E2EFCE8052C822
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\...\MountPoints2: {eeda791b-c2f5-11eb-8a43-f8da0c443228} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {41F36E90-1F23-4621-B933-AB4F011ABAB8} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe (No File)
Task: {7700FF3C-17D5-4D22-BE51-23C2A49445B0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-02-19] (Google Inc -> Google LLC)
Task: {C1F90728-E5D8-4373-9226-6FAB957578D4} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe -lloc dataupload --ignoresecondarysplash --runsilently --skipidlewait (No File)
Task: {D243F037-5006-4DC6-BE10-9E75B71901B1} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe -silentenumeration -st SystemToolsDailyTest --ignoresecondarysplash --runsilently (No File)
Task: {FAAA8216-4BEB-483B-8685-214405E4ED67} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-02-19] (Google Inc -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\DumpStack.log.tmp
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Obchod\AppData\Local\{8D811739-FAD1-40FB-8A18-2B3DBE10EAEC}
C:\Users\Obchod\AppData\Local\{EEC0830D-7CEB-4274-81DD-3EC504CA9204}

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\ProgramData\Temp => ":2F522D1F" ADS removed successfully
C:\ProgramData\Temp => ":8927A071" ADS removed successfully
"HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9A083D8F-57ED-40A5-8AEC-2D7A3E3D0C04} => removed successfully
"C:\Program Files\Rivet Networks\SmartByte\SmartByteNetworkService.exe#18E2EFCE8052C822" => not found
HKU\S-1-5-21-2166850603-1525175105-4254810413-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eeda791b-c2f5-11eb-8a43-f8da0c443228} => removed successfully
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{41F36E90-1F23-4621-B933-AB4F011ABAB8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41F36E90-1F23-4621-B933-AB4F011ABAB8}" => removed successfully
C:\WINDOWS\System32\Tasks\PCDEventLauncherTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDEventLauncherTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7700FF3C-17D5-4D22-BE51-23C2A49445B0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7700FF3C-17D5-4D22-BE51-23C2A49445B0}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C1F90728-E5D8-4373-9226-6FAB957578D4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C1F90728-E5D8-4373-9226-6FAB957578D4}" => removed successfully
C:\WINDOWS\System32\Tasks\PCDDataUploadTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PCDDataUploadTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D243F037-5006-4DC6-BE10-9E75B71901B1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D243F037-5006-4DC6-BE10-9E75B71901B1}" => removed successfully
C:\WINDOWS\System32\Tasks\SystemToolsDailyTest => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SystemToolsDailyTest" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FAAA8216-4BEB-483B-8685-214405E4ED67}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FAAA8216-4BEB-483B-8685-214405E4ED67}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Obchod\AppData\Local\{8D811739-FAD1-40FB-8A18-2B3DBE10EAEC} => moved successfully
C:\Users\Obchod\AppData\Local\{EEC0830D-7CEB-4274-81DD-3EC504CA9204} => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21047810 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 8587953 B
Edge => 0 B
Chrome => 48970502 B
Firefox => 59842964 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 82553542 B
systemprofile32 => 82553542 B
LocalService => 82578636 B
NetworkService => 594759964 B
Obchod => 616051568 B

RecycleBin => 2226476 B
EmptyTemp: => 1.5 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 10-12-2021 21:29:12)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 21:29:32 ====

[Rudy]

Smazáno. Zrychlil se PC?

[Rull]

Rozhodně ano po restartu na fixlog jsem zapl i prohlížeč a byl do 2 minut což bývalo i 10-15x tolik času než vůbec něco vyskočilo a já už měl domněnku že to bylo právě tím Synthenh.exe který jsem i otestoval na virustotal a v pořádku....tak myslím pokud je to vše tak budu ještě sledovat PC jestli se nic nepřihodi a snad nějakou dobu vydrží, tak kdyby jsme se už neviděli tak přeji hezké svátky a at fórum dál pokračuje a pomáhá můžete

[Rudy]

To jsem rád!. Doufám, že to lespoň chvíli vydrží. Také přeji hezké svátky a nemáte zač! !